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Supplemental Reply to Office Action of March 19, 2004 

Amendments to the Claims: 

This listing of claims will replace all prior versions and listings of claims in the 
application. 

Listing of Claims: 

1. (cancelled) 

2. (cancelled) 

3. (cancelled) 

4. (cancelled) 

5. (cancelled) 

6. (previously presented) A process of detecting security vulnerabilities present 
in a target Web site, comprising: 



objects which are included in the default Web page; 

automatically passing an authorized username and password to the target Web 
site, if required to gain access to the target Web site; 

scanning the target Web site for at least one known exploit in order to identify 
security vulnerabilities; 

applying at least one predetermined hack method to the target Web site in 
order to identify security vulnerabilities; and 

outputting the security vulnerabilities. 



establishing an Internet connection with the target Web site; 



retrieving a default Web page for the target Web site; 



parsing through the default Web page to identify any linked-to Web pages or 
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1. (previously presented) The method of claim 6, further comprising scanning at 
least one of the security vulnerabilities for at least one known exploit in order to identify 
further security vulnerabilities. 

8. (previously presented) The method of claim 6, further comprising parsing 
through the linked-to Web pages to identity any further-linked-to Web pages or objects 
which are included in the linked-to Web pages. 

9. (previously presented) The method of claim 8, further comprising parsing 
through the default Web page to identify any hidden Web pages or objects which are 
included in the hidden Web pages. 

10. (previously presented) The method of claim 9, further comprising parsing 
through the hidden Web-pages to identify any further-hidden Web pages or objects which are 
included in the further-hidden Web pages. 

1 1 . (previously presented) The method of claim 10, further comprising: 
comparing each hidden Web page and each further-hidden Web page to each 

linked-to Web page and each further-linked-to Web page; and 

identifying each hidden Web page and each further-hidden Web page that is 
different from the linked-to Web pages and the further-linked to Web pages. 

12. (previously presented) The method of claim 8, wherein the parsing through the 
default Web page and the parsing through the linked-to Web pages include performing a 
keyword search in order to detect at least one poini of interest. 
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13. (previously presented) The method of claim 12. wherein the at least one point 
of interest is selected from the group consisting of an administration Web page and a 
directory list tag. 

14. (previously presented) The method of claim 12, wherein the applying at least 
one predetermined hack method includes attempting to access unauthorized files located 
outside the target Web site's root directory. 

15. (previously presented) The method of claim 8, wherein the applying at least 
one predetermined hack method includes attempting to access unauthorised files located 
outside the target Web site's root directory. 

16. (previously presented) The method of claim 15, wherein the scanning the 
target Web site for at least one known exploit includes checking for at least one common 
filename. 

17. (previously presented) The method of claim 16, wherein the at least on© 
common filename is selected from the group consisting of ''msadcs.dli" and 
"WSJTPXOG." , 

18. (previously presented) The method of claim 8, wherein the applying ax least 
one predetermined hack method includes automatically passing multiple usernames and 
passwords to the target Web site if a login Web page is encountered. 

J 9. (previously presented) A process of detecting security vulnerabilities present 
in a target Web site, comprising: 

establishing an Internet connection with the target Web site; 
retrieving a default Web page for the target Web site; 
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parsing through the default Web page to identify any linked-to Web pages or 
objects which are included in the default Web page, wherein the parsing includes performing 
a keyword search in order to detect at least one point of interest; 

scanning the target Web site for at least one known exploit in order to identify 
security vulnerabilities; 

applying at least one predetermined hack method to the target Web site in 
order to identify security vulnerabilities; and 

prioritizing the security vulnerabilities. 

20. (previously presented) The method of claim 19, further comprising parsing 
through the default Web page to identity any hidden Web pages or objects which are 
included in the hidden Web pages. 

21. (previously presented) The method of claim 20, further comprising parsing 
through the hidden Web-pages to identify any further-hidden Web pages or objects which are 
included In the further-hidden Web pages. 

22. (previously presented) The method of claim 2 1 , further comprising: 
comparing each hidden Web page and each further-hidden Web page to each 

linked-to Web page and each further-linked-to Web page; and 

identifying each hidden Web page and each further-hidden Web page that is 
different from the linked-to Web pages and the further-linked to Web pages. 

23. (previously presented) The method of claim 19, further comprising parsing 
through the linked-to Web pages to identify any furmer-linked-to Web pages or objects 
which are included in the linked-to Web pages. 
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24. (previously presented) The method of claim 23, wherein the at least one point 
of interest is selected from the group consisting of an administration Web page and a 
directory list tag. 

25. (previously presented) The method of claim 23, further comprising scanning at 
least one of the security vulnerabilities for at least one known exploit in order to identify 
further security vulnerabi I ities . ^ 

26. (previously presented) The method of claim 23, wherein the applying at least 
one predetermined hack method includes attempting to access unauthorized files located 
outside the target Web site's root directory. 

27. (previously presented) The method of claim 23 f further comprising 
automatically passing an authorized username and password to the target Web site, if 
required to gain access to the target Web site. 

28. (previously presented) The method of claim 23, wherein the applying at least 
one predetermined hack method includes automatically passing multiple usernames and 
passwords to the target Web site if a login Web page is encountered. 

29. (previously presented) The method of claim 23, wherein the applying at least 
one predetermined hack method includes passing invalid data to a data entry field of the 
target Web site and evaluating the result. 

30. (previously presented) The method of claim 29, further comprising: 
recording the invalid data which produces a security vulnerability; and 
passing the recorded invalid data to at least one other data entry field of the 

target Web site. 
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31. (previously presented) A process of detecting security vulnerabilities present 
in a target Web site, comprising: 

establishing an Internet connection with the target Web site; 
retrieving a default Web page for the target Web site; 

parsing through the default Web page to identify any linked-to Web pages or 
objects which are included in the default Web page; 

scanning the target Web site for at least one known exploit in order to identify 
security vulnerabilities; 

applying at least one predetermined hack method to the target Web site in 
order to identify security vulnerabilities, wherein the applying at least one predetermined 
hack method includes attempting to access unauthorized files located outside the target Web 
site's root directory; and 

outputting the security vulnerabilities. 

32. (previously presented) The method of claim 31, further comprising scanning at 
least one of the security vulnerabilities for at least one known exploit in order to identify 
further security vulnerabilities.* 

33. (previously presented) The method of claim 31, further comprising parsing 
through the linkcd-to Web pages to identify any further-linked-to Web pages or objects 
which are included in the linked-to Web pages. 

34. (previously presented) The method of claim 33, further comprising parsing 
through the default Web page to identify any hidden Web pages or objects which are 
included in the hidden Web pages. 
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35. (previously presented) The method of claim 34, further comprising parsing 
through the hidden Web-pagcs to identify any further-hidden Web pages or objects which are 
included in the further-hidden Web pages. 

36. (previously presented) The method of claim 35, further comprising: 
comparing each hidden Web page and each further-hidden Web page to each 

linked-to Web page and each further-linked-to Web page; and 

identifying each hidden Web page and each further-hidden Web page that is 
different from the linked-to Web pages and the further-linked to Web pages. 

37. (previously presented) The method of claim 33, wherein the parsing through 
the default Web page and the parsing through the linked-to Web pages include performing a 
keyword search in order to detect at least one point of interest. 

38. (previously presented) The method of claim 37, wherein the at least one point 
of interest is selected from the group consisting of an administration Web page and a 
directory list tag. 

39. (previously presented) The method of claim 38, further comprising 
automatically passing an authorized usemame and password to the target Web site, if 
required to gain access to the target Web site. 

40. (previously presented) The method of claim 33, wherein the scanning the 
target Web site for at least one known exploit includes checking for at least one common 
filename. 
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41. (previously presented) The method of claim 40, wherein the at least one 
common filename is selected from the group consisting of "msadcs.dll" and 
"WSJTP.LOG." 

42. (previously presented) A system for detecting security vulnerabilities present 
in a target Web site, comprising: 

memory for storing: 

a Web page database; 

at least one exploit; and 

a security vulnerability database; and 
a processor connected to the memory and being configured to: 

establish an Internet connection with the target Web site; 

retrieve a default Web page for the target Web site; 
Sparse through the default Web page to identify any linked-to 
Web pages or objects which are included in the default Web page; 

automatically pass an authorized username and password to the 
target Web site, if required to gain access to the target Web site; 

scan the target Web site for at least one known exploit in order 
to identify security vulnerabilities; 

apply at least one predetermined hack method to the target Web 
site in order to identify security vulnerabilities; and 

prioritize the security vulnerabilities. 
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43. (previously presented) The system of claim 42, wherein the processor is 
further configured to parse through the linked-to Web pages to identity any further-linked-to 
Web pages or objects which are included in the linked-to Web pages, 

44. (previously presented) The system of claim 43, wherein the processor is 
further configured to scan at least one of the security vulnerabilities for at least one known 
exploit in order to identify further security vulnerabilities. 

45. (previously presented) The system of claim 44, wherein the processor is 
further configured to parse through the default Web page to identify any hidden Web pages 
or objects which are included in the hidden Web page$. 

46. (previously presented) The system of claim 45, wherein the processor is 
further configured to parse through the hidden Web-pages to identify any further-hidden Web 
pages or objects which are included in the further-hidden Web pages. 

47. (previously presented) The system of claim 46, wherein the processor is 

further configured to: 

compare each hidden Web page and each further-hidden Web page to each 

linked-to Web page and each further-linked-to Web page; and 

identify each hidden Web page and each further-hidden Web page that is 
different from the linked-to Web pages and the further-linked to Web pages. 

48. (previously presented) The system of claim 43, wherein the applying at least 
one predetermined hack method includes attempting to access unauthorized files located 
outside the target Web site's root directory. 
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49. (previously presented) The system of claim 48, wherein the parsing through 
the default Web page and the parsing through the linked-to Web pages include performing a 
keyword search in order to detect at least one point of interest. 

50. (previously presented) The system of claim 49, wherein the at least one point 
of interest is selected from tbe group consisting of an administration Web page and a 
directory list tag. 

51. (previously presented) The system of claim 43, wherein the applying at least 
one predetermined hack method includes automatically passing multiple usemames and 
passwords to the target Web site if a login Web page is encountered.. 

52. (previously presented) A system for detecting security vulnerabilities present 
in a target Web site, comprising: 

memory for storing: 

a Web page database; 

at least one exploit; and 

a security vulnerability database; and 
a processor connected to the memory and being configured to: 

establish an Internet connection with the target Web site; 

retrieve a default Web page for the target Web site; 

parse through the default Web page to identity any linked-to 
Web pages or objects which are included in the default Web page, wherein the parsing 
includes performing a keyword search in order to detect at least one point of interest; 
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scan the target Web site for at least one known exploit in order 

to identify security vulnerabil hies; 

apply at least one predetermined hack method to the target Web 

site in order to identify security vulnerabilities; and 

output the security vulnerabilities. 

53. (previously presented) The system of claim 52, wherein the processor is 
further configured to scan at least one of the security vulnerabilities for at least one known 
exploit in order to identify further security vulnerabilities. 

54. (previously presented) The system of claim 52, wherein the processor is 
further configured to parse through the linked-to Web pages to identify any further-linked-to 
Web pages or objects which are included in the linked-to Web pages. 

55. (previously presented) The system of claim 54, wherein the at least one point 
of interest is selected from the group consisting of an administration Web page and a 
directory list tag. 

56. (previously presented) The system of claim 54, wherein the processor is 
further configured to parse througji the default Web page to identify any hidden Web pages 
or objects which are included in the hidden Web pages. 

57. (previously presented) The system of claim 56, wherein the processor is 
further configured to parse through the hidden Web-pages to identify any further-hidden Web 
pages or objects which are included in the further-hidden Web pages. 

58. (previously presented) The system of claim 57, wherein the processor is 
further configured to: 
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compare each hidden Web page and each further-hidden Web page to each 
linked-to Web page and each further-] inked-to Web page; and 

identify each hidden Web page and each ftirther-hidden Web page that is 
different from the linked-to Web pages and the further-linked to Web pages. 

59. (previously presented) The system of claim 54, wherein the processor is 
further configured to automatically pass an authorized usernarae and password to the target 
Web site, if required to gain access to the target Web site. 

60. (previously presented) The system of claim 59, wherein the applying at least 
one predetermined hack method includes attempting to access unauthorized files located 
outside the target Web site's root directory. 

61. (previously presented) The system of claim 54, wherein the applying at least 
one predetermined hack method includes passing invalid data to a data entry field of the 
target Web site and evaluating the result. 

62. (previously presented) The system of claim 61, wherein the processor is 

further configured to: 

record the invalid data which produces a security vulnerability; and 

pass the recorded invalid data to at least one other data entry field of the target 

Web site. 

63. (previously presented) A system for detecting security vulnerabilities present 
in a target Web site, comprising: 

memory for storing: 

a Web page database; 
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at least one exploit; and 
a security vulnerability database; and 
a processor connected to the memory and being configured to: 

establish an Internet connection with the target Web site; 
retrieve a default Web page for the target Web site; 
parse through the default Web page to identify any linked-to 
Web pages or objects which are included in the default Web page; 

scan the target Web site for at least one known exploit in order 

to identify security vulnerabilities; 

apply at least one predetermined hack method to the target Web 
site in order to identify security vulnerabilities, wherein the applying at least one 
predetermined hack method includes attempting to access unauthorized files located outside 
the target Web site' s root directory, and 

output the security vulnerabilities. 

64. (previously presented) The system of claim 63, wherein the processor is 
further configured to parse through the linked-to Web pages to identify any further-linked-to 
Web pages or objects which are included in the linked-to Web pages. 

65. (previously presented) The system of claim 64 f wherein the processor is 
further configured to parse through the default Web page to identify any hidden Web pages 
or objects which are included in the hidden Web pages. 
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66. (previously presented) The system of claim 65, wherein the processor is 
further configured to parse through the hidden Web-pages to identify any further-hidden Web 
pages or objects which are included In the further-hidden Web pages. 

67. (previously presented) The system of claim 66, wherein the processor is 

further configured to: 

compare each hidden Web page and each further-hidden Web page to each 
linked-to Web page and each further-linked-to Web page; and 

identify each hidden Web page and each further-hidden Web page that is 
different from the linked-to Web pages and the further-linked to Web pages. 

68. (previously presented) The system of claim 67, wherein the parsing through 
the default Web page and the parsing through the linked-to Web pages include performing a 
keyword search in order to detect at least one point of interest. 

69. (previously presented) The system of claim 68, wherein the at least one point 
of interest is selected from the group consisting of an administration Web page and a 
directory list tag. 

70. (previously presented) The system of claim 64, wherein the processor is 
further configured to automatically pass an authorized username and password to the target 
Web site, if required to gain access to the target Web site. 

71. (previously presented) The system of claim 70, wherein the processor is 
further configured to scan at least one of the security vulnerabilities for at least one known 
exploit in order to identify further security vulnerabilities. 

72. - 102. (cancelled) 
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